@urateam/core 0.1.4 → 0.1.8

package/dist/__tests__/db-audit-schema.test.js

@@ -0,0 +1,35 @@
+import { describe, it, expect } from "vitest";
+import { createDb } from "../db/client.js";
+import { auditEvents } from "../db/schema.js";
+import { sql } from "drizzle-orm";
+describe("audit_events schema", () => {
+    it("creates the table with required columns on fresh SQLite db", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        const cols = db.all(sql `PRAGMA table_info(audit_events)`);
+        const names = cols.map(c => c.name).sort();
+        expect(names).toEqual([
+            "actor", "actor_type", "event_type", "id", "input_tokens",
+            "issue_id", "output_tokens", "payload", "run_id", "scope", "timestamp",
+        ]);
+    });
+    it("inserts and reads back an audit event", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        await db.insert(auditEvents).values({
+            id: "evt_1",
+            eventType: "pm.issue_promoted",
+            actor: "pm-agent",
+            actorType: "pm-agent",
+            scope: "team:T1",
+            runId: null,
+            issueId: "BEC-1",
+            inputTokens: 0,
+            outputTokens: 0,
+            payload: JSON.stringify({ test: true }),
+        });
+        const rows = await db.select().from(auditEvents);
+        expect(rows).toHaveLength(1);
+        expect(rows[0].eventType).toBe("pm.issue_promoted");
+        expect(rows[0].timestamp).toBeInstanceOf(Date);
+    });
+});
+//# sourceMappingURL=db-audit-schema.test.js.map

package/dist/__tests__/db-audit-schema.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"db-audit-schema.test.js","sourceRoot":"","sources":["../../src/__tests__/db-audit-schema.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAC9C,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE;IACnC,EAAE,CAAC,4DAA4D,EAAE,KAAK,IAAI,EAAE;QAC1E,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAM,IAAI,GAAI,EAAU,CAAC,GAAG,CAAC,GAAG,CAAA,iCAAiC,CAA0B,CAAC;QAC5F,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC;QAC3C,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC;YACpB,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,IAAI,EAAE,cAAc;YACzD,UAAU,EAAE,eAAe,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,WAAW;SACvE,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;QACrD,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAO,EAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC;YAC3C,EAAE,EAAE,OAAO;YACX,SAAS,EAAE,mBAAmB;YAC9B,KAAK,EAAE,UAAU;YACjB,SAAS,EAAE,UAAU;YACrB,KAAK,EAAE,SAAS;YAChB,KAAK,EAAE,IAAI;YACX,OAAO,EAAE,OAAO;YAChB,WAAW,EAAE,CAAC;YACd,YAAY,EAAE,CAAC;YACf,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;SACxC,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC1D,MAAM,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC7B,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;QACpD,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/db-cost-rollups-schema.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=db-cost-rollups-schema.test.d.ts.map

package/dist/__tests__/db-cost-rollups-schema.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"db-cost-rollups-schema.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/db-cost-rollups-schema.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/db-cost-rollups-schema.test.js

@@ -0,0 +1,28 @@
+import { describe, it, expect } from "vitest";
+import { createDb } from "../db/client.js";
+import { costRollupsDaily } from "../db/schema.js";
+import { sql } from "drizzle-orm";
+describe("cost_rollups_daily schema", () => {
+    it("creates table with the expected columns", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        const cols = db.all(sql `PRAGMA table_info(cost_rollups_daily)`);
+        expect(cols.map(c => c.name).sort()).toEqual([
+            "computed_at", "date", "dollars", "id", "input_tokens", "linear_team_id",
+            "output_tokens", "pipeline_key", "prs_merged", "repo_url", "runs", "time_saved_hours",
+        ]);
+    });
+    it("inserts and reads back a row", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        await db.insert(costRollupsDaily).values({
+            id: "r_1", date: "2026-04-01", pipelineKey: "auto-implement",
+            linearTeamId: "T1", repoUrl: "https://github.com/x/y",
+            runs: 5, prsMerged: 4, inputTokens: 1000, outputTokens: 500,
+            dollars: 12.34, timeSavedHours: 16,
+        });
+        const rows = await db.select().from(costRollupsDaily);
+        expect(rows).toHaveLength(1);
+        expect(rows[0].dollars).toBeCloseTo(12.34, 2);
+        expect(rows[0].timeSavedHours).toBe(16);
+    });
+});
+//# sourceMappingURL=db-cost-rollups-schema.test.js.map

package/dist/__tests__/db-cost-rollups-schema.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"db-cost-rollups-schema.test.js","sourceRoot":"","sources":["../../src/__tests__/db-cost-rollups-schema.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,QAAQ,CAAC,2BAA2B,EAAE,GAAG,EAAE;IACzC,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;QACvD,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAM,IAAI,GAAI,EAAU,CAAC,GAAG,CAAC,GAAG,CAAA,uCAAuC,CAA0B,CAAC;QAClG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC;YAC3C,aAAa,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,cAAc,EAAE,gBAAgB;YACxE,eAAe,EAAE,cAAc,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,EAAE,kBAAkB;SACtF,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8BAA8B,EAAE,KAAK,IAAI,EAAE;QAC5C,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAO,EAAU,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC;YAChD,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,YAAY,EAAE,WAAW,EAAE,gBAAgB;YAC5D,YAAY,EAAE,IAAI,EAAE,OAAO,EAAE,wBAAwB;YACrD,IAAI,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG;YAC3D,OAAO,EAAE,KAAK,EAAE,cAAc,EAAE,EAAE;SACnC,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC7B,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC9C,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/db-rbac-schema.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=db-rbac-schema.test.d.ts.map

package/dist/__tests__/db-rbac-schema.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"db-rbac-schema.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/db-rbac-schema.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/db-rbac-schema.test.js

@@ -0,0 +1,32 @@
+import { describe, it, expect } from "vitest";
+import { createDb } from "../db/client.js";
+import { dashboardUsers } from "../db/schema.js";
+import { sql } from "drizzle-orm";
+describe("dashboard_users.role column", () => {
+    it("includes role in the table schema with default 'viewer'", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        const cols = db.all(sql `PRAGMA table_info(dashboard_users)`);
+        expect(cols.map(c => c.name).sort()).toContain("role");
+    });
+    it("defaults new rows to 'viewer'", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        await db.insert(dashboardUsers).values({
+            id: "u_1", email: "a@b.com", name: "A B", workosUserId: "wu_1",
+        });
+        const rows = await db.select().from(dashboardUsers);
+        expect(rows[0].role).toBe("viewer");
+    });
+    it("accepts explicit role values", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        await db.insert(dashboardUsers).values({
+            id: "u_admin", email: "admin@b.com", name: null, workosUserId: null, role: "admin",
+        });
+        await db.insert(dashboardUsers).values({
+            id: "u_op", email: "op@b.com", name: null, workosUserId: null, role: "operator",
+        });
+        const rows = await db.select().from(dashboardUsers);
+        const roles = rows.map((r) => r.role).sort();
+        expect(roles).toEqual(["admin", "operator"]);
+    });
+});
+//# sourceMappingURL=db-rbac-schema.test.js.map

package/dist/__tests__/db-rbac-schema.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"db-rbac-schema.test.js","sourceRoot":"","sources":["../../src/__tests__/db-rbac-schema.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AACjD,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;IAC3C,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAM,IAAI,GAAI,EAAU,CAAC,GAAG,CAAC,GAAG,CAAA,oCAAoC,CAA0B,CAAC;QAC/F,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACzD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+BAA+B,EAAE,KAAK,IAAI,EAAE;QAC7C,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAO,EAAU,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC;YAC9C,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,YAAY,EAAE,MAAM;SAC/D,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC7D,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8BAA8B,EAAE,KAAK,IAAI,EAAE;QAC5C,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAO,EAAU,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC;YAC9C,EAAE,EAAE,SAAS,EAAE,KAAK,EAAE,aAAa,EAAE,IAAI,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO;SACnF,CAAC,CAAC;QACH,MAAO,EAAU,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC;YAC9C,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,UAAU,EAAE,IAAI,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,IAAI,EAAE,UAAU;SAChF,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC7D,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC;QAClD,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/db-sso-schema.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=db-sso-schema.test.d.ts.map

package/dist/__tests__/db-sso-schema.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"db-sso-schema.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/db-sso-schema.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/db-sso-schema.test.js

@@ -0,0 +1,48 @@
+import { describe, it, expect } from "vitest";
+import { createDb } from "../db/client.js";
+import { dashboardUsers, dashboardSessions } from "../db/schema.js";
+import { sql } from "drizzle-orm";
+describe("sso schema", () => {
+    it("creates dashboard_users and dashboard_sessions tables on fresh SQLite db", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        const userCols = db.all(sql `PRAGMA table_info(dashboard_users)`);
+        expect(userCols.map((c) => c.name).sort()).toEqual([
+            "created_at",
+            "email",
+            "id",
+            "last_login_at",
+            "name",
+            "role",
+            "workos_user_id",
+        ]);
+        const sessionCols = db.all(sql `PRAGMA table_info(dashboard_sessions)`);
+        expect(sessionCols.map((c) => c.name).sort()).toEqual([
+            "created_at",
+            "expires_at",
+            "id",
+            "last_seen_at",
+            "user_id",
+        ]);
+    });
+    it("inserts and reads back a user + session", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        await db.insert(dashboardUsers).values({
+            id: "u_1",
+            email: "a@b.com",
+            name: "A B",
+            workosUserId: "wu_1",
+        });
+        await db.insert(dashboardSessions).values({
+            id: "s_1",
+            userId: "u_1",
+            expiresAt: new Date(Date.now() + 3600_000),
+        });
+        const users = await db.select().from(dashboardUsers);
+        expect(users).toHaveLength(1);
+        expect(users[0].email).toBe("a@b.com");
+        const sessions = await db.select().from(dashboardSessions);
+        expect(sessions).toHaveLength(1);
+        expect(sessions[0].userId).toBe("u_1");
+    });
+});
+//# sourceMappingURL=db-sso-schema.test.js.map

package/dist/__tests__/db-sso-schema.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"db-sso-schema.test.js","sourceRoot":"","sources":["../../src/__tests__/db-sso-schema.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,cAAc,EAAE,iBAAiB,EAAE,MAAM,iBAAiB,CAAC;AACpE,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,QAAQ,CAAC,YAAY,EAAE,GAAG,EAAE;IAC1B,EAAE,CAAC,0EAA0E,EAAE,KAAK,IAAI,EAAE;QACxF,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAM,QAAQ,GAAI,EAAU,CAAC,GAAG,CAC9B,GAAG,CAAA,oCAAoC,CACb,CAAC;QAC7B,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC;YACjD,YAAY;YACZ,OAAO;YACP,IAAI;YACJ,eAAe;YACf,MAAM;YACN,MAAM;YACN,gBAAgB;SACjB,CAAC,CAAC;QACH,MAAM,WAAW,GAAI,EAAU,CAAC,GAAG,CACjC,GAAG,CAAA,uCAAuC,CAChB,CAAC;QAC7B,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC;YACpD,YAAY;YACZ,YAAY;YACZ,IAAI;YACJ,cAAc;YACd,SAAS;SACV,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;QACvD,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAO,EAAU,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC;YAC9C,EAAE,EAAE,KAAK;YACT,KAAK,EAAE,SAAS;YAChB,IAAI,EAAE,KAAK;YACX,YAAY,EAAE,MAAM;SACrB,CAAC,CAAC;QACH,MAAO,EAAU,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,MAAM,CAAC;YACjD,EAAE,EAAE,KAAK;YACT,MAAM,EAAE,KAAK;YACb,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,QAAQ,CAAC;SAC3C,CAAC,CAAC;QACH,MAAM,KAAK,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC9D,MAAM,CAAC,KAAK,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC9B,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QACpE,MAAM,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACjC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/helpers/license.d.ts

@@ -0,0 +1,3 @@
+export declare function installTestProLicense(tier?: "pro" | "enterprise"): Promise<void>;
+export declare function restoreLicense(): Promise<void>;
+//# sourceMappingURL=license.d.ts.map

package/dist/__tests__/helpers/license.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"license.d.ts","sourceRoot":"","sources":["../../../src/__tests__/helpers/license.ts"],"names":[],"mappings":"AA8BA,wBAAsB,qBAAqB,CACzC,IAAI,GAAE,KAAK,GAAG,YAAoB,GACjC,OAAO,CAAC,IAAI,CAAC,CAgCf;AAED,wBAAsB,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC,CAiBpD"}

package/dist/__tests__/helpers/license.js

@@ -0,0 +1,74 @@
+/**
+ * Test helper: install a valid signed pro-tier license JWT for tests that
+ * exercise license-gated features. Generates a fresh ed25519 keypair, patches
+ * the embedded public key, and signs a pro-tier JWT into URATEAM_LICENSE_KEY.
+ *
+ * Use in `beforeEach`:
+ *
+ *   import { installTestProLicense, restoreLicense } from "./helpers/license.js";
+ *   beforeEach(async () => { await installTestProLicense(); });
+ *   afterEach(async () => { await restoreLicense(); });
+ */
+import { generateKeyPairSync, sign } from "node:crypto";
+import { _resetLicenseCache } from "../../license.js";
+function b64url(buf) {
+    return buf.toString("base64").replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+}
+function makeJwt(privateKey, payload) {
+    const header = { alg: "EdDSA", typ: "JWT" };
+    const headerB64 = b64url(Buffer.from(JSON.stringify(header)));
+    const payloadB64 = b64url(Buffer.from(JSON.stringify(payload)));
+    const signingInput = `${headerB64}.${payloadB64}`;
+    const sig = sign(null, Buffer.from(signingInput), privateKey);
+    return `${signingInput}.${b64url(sig)}`;
+}
+let originalPublicKey;
+let originalEnv;
+export async function installTestProLicense(tier = "pro") {
+    const { publicKey, privateKey } = generateKeyPairSync("ed25519");
+    const publicKeyB64 = Buffer.from(publicKey.export({ format: "der", type: "spki" })).toString("base64");
+    const mod = await import("../../license-public-key.js");
+    if (originalPublicKey === undefined) {
+        originalPublicKey = mod
+            .LICENSE_PUBLIC_KEY_DER_B64;
+    }
+    Object.defineProperty(mod, "LICENSE_PUBLIC_KEY_DER_B64", {
+        value: publicKeyB64,
+        writable: true,
+        configurable: true,
+    });
+    const now = Math.floor(Date.now() / 1000);
+    const jwt = makeJwt(privateKey, {
+        iss: "urateams.com",
+        sub: "cust_test",
+        tier,
+        seats: 25,
+        iat: now,
+        exp: now + 86_400,
+    });
+    if (originalEnv === undefined) {
+        originalEnv = process.env.URATEAM_LICENSE_KEY;
+    }
+    process.env.URATEAM_LICENSE_KEY = jwt;
+    _resetLicenseCache();
+}
+export async function restoreLicense() {
+    if (originalPublicKey !== undefined) {
+        const mod = await import("../../license-public-key.js");
+        Object.defineProperty(mod, "LICENSE_PUBLIC_KEY_DER_B64", {
+            value: originalPublicKey,
+            writable: true,
+            configurable: true,
+        });
+        originalPublicKey = undefined;
+    }
+    if (originalEnv === undefined) {
+        delete process.env.URATEAM_LICENSE_KEY;
+    }
+    else {
+        process.env.URATEAM_LICENSE_KEY = originalEnv;
+        originalEnv = undefined;
+    }
+    _resetLicenseCache();
+}
+//# sourceMappingURL=license.js.map

package/dist/__tests__/helpers/license.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"license.js","sourceRoot":"","sources":["../../../src/__tests__/helpers/license.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AACH,OAAO,EAAE,mBAAmB,EAAkB,IAAI,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,kBAAkB,EAAE,MAAM,kBAAkB,CAAC;AAEtD,SAAS,MAAM,CAAC,GAAW;IACzB,OAAO,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AAC3F,CAAC;AAED,SAAS,OAAO,CAAC,UAAqB,EAAE,OAAe;IACrD,MAAM,MAAM,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;IAC5C,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;IAC9D,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IAChE,MAAM,YAAY,GAAG,GAAG,SAAS,IAAI,UAAU,EAAE,CAAC;IAClD,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,UAAU,CAAC,CAAC;IAC9D,OAAO,GAAG,YAAY,IAAI,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC;AAC1C,CAAC;AAED,IAAI,iBAAqC,CAAC;AAC1C,IAAI,WAA+B,CAAC;AAEpC,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,OAA6B,KAAK;IAElC,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,mBAAmB,CAAC,SAAS,CAAC,CAAC;IACjE,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAC9B,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAClD,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAErB,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;IACxD,IAAI,iBAAiB,KAAK,SAAS,EAAE,CAAC;QACpC,iBAAiB,GAAI,GAA8C;aAChE,0BAA0B,CAAC;IAChC,CAAC;IACD,MAAM,CAAC,cAAc,CAAC,GAAG,EAAE,4BAA4B,EAAE;QACvD,KAAK,EAAE,YAAY;QACnB,QAAQ,EAAE,IAAI;QACd,YAAY,EAAE,IAAI;KACnB,CAAC,CAAC;IAEH,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAC1C,MAAM,GAAG,GAAG,OAAO,CAAC,UAAU,EAAE;QAC9B,GAAG,EAAE,cAAc;QACnB,GAAG,EAAE,WAAW;QAChB,IAAI;QACJ,KAAK,EAAE,EAAE;QACT,GAAG,EAAE,GAAG;QACR,GAAG,EAAE,GAAG,GAAG,MAAM;KAClB,CAAC,CAAC;IAEH,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;QAC9B,WAAW,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IAChD,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,mBAAmB,GAAG,GAAG,CAAC;IACtC,kBAAkB,EAAE,CAAC;AACvB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,cAAc;IAClC,IAAI,iBAAiB,KAAK,SAAS,EAAE,CAAC;QACpC,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;QACxD,MAAM,CAAC,cAAc,CAAC,GAAG,EAAE,4BAA4B,EAAE;YACvD,KAAK,EAAE,iBAAiB;YACxB,QAAQ,EAAE,IAAI;YACd,YAAY,EAAE,IAAI;SACnB,CAAC,CAAC;QACH,iBAAiB,GAAG,SAAS,CAAC;IAChC,CAAC;IACD,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;QAC9B,OAAO,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IACzC,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,mBAAmB,GAAG,WAAW,CAAC;QAC9C,WAAW,GAAG,SAAS,CAAC;IAC1B,CAAC;IACD,kBAAkB,EAAE,CAAC;AACvB,CAAC"}

package/dist/__tests__/license-audit-event.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=license-audit-event.test.d.ts.map

package/dist/__tests__/license-audit-event.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"license-audit-event.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/license-audit-event.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/license-audit-event.test.js

@@ -0,0 +1,60 @@
+import { describe, it, expect, beforeEach, afterEach } from "vitest";
+import { createDb } from "../db/client.js";
+import { auditEvents } from "../db/schema.js";
+import { checkLicense, _resetLicenseCache } from "../license.js";
+describe("checkLicense — audit event on invalid license", () => {
+    beforeEach(() => {
+        _resetLicenseCache();
+        delete process.env.URATEAM_LICENSE_KEY;
+    });
+    afterEach(() => {
+        _resetLicenseCache();
+        delete process.env.URATEAM_LICENSE_KEY;
+    });
+    it("emits license.validation_failed when license key is bad-signature", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        // A syntactically-valid JWT shape (three parts, EdDSA header) but bogus
+        // signature — verifyJwt returns { ok: false, reason: "bad-signature" }.
+        const header = Buffer.from(JSON.stringify({ alg: "EdDSA", typ: "JWT" }))
+            .toString("base64")
+            .replace(/\+/g, "-")
+            .replace(/\//g, "_")
+            .replace(/=+$/, "");
+        const payload = Buffer.from(JSON.stringify({
+            iss: "urateams.com",
+            sub: "cust",
+            tier: "pro",
+            iat: 1,
+            exp: Math.floor(Date.now() / 1000) + 3600,
+        }))
+            .toString("base64")
+            .replace(/\+/g, "-")
+            .replace(/\//g, "_")
+            .replace(/=+$/, "");
+        const sig = "AAAA";
+        process.env.URATEAM_LICENSE_KEY = `${header}.${payload}.${sig}`;
+        const status = checkLicense(db);
+        expect(status.licensed).toBe(false);
+        expect(status.tier).toBe("oss");
+        expect(status.invalidReason).toBe("bad-signature");
+        // void logAuditEvent — flush microtask
+        await new Promise((r) => setImmediate(r));
+        const rows = await db.select().from(auditEvents);
+        const failures = rows.filter((r) => r.eventType === "license.validation_failed");
+        expect(failures).toHaveLength(1);
+        expect(failures[0].actor).toBe("system");
+        expect(failures[0].actorType).toBe("system");
+        const payloadJson = JSON.parse(failures[0].payload);
+        expect(payloadJson.invalidReason).toBe("bad-signature");
+    });
+    it("does not emit an audit event when no license key is set (OSS mode)", async () => {
+        const db = await createDb({ connectionString: ":memory:" });
+        const status = checkLicense(db);
+        expect(status.tier).toBe("oss");
+        expect(status.invalidReason).toBeUndefined();
+        await new Promise((r) => setImmediate(r));
+        const rows = await db.select().from(auditEvents);
+        expect(rows).toHaveLength(0);
+    });
+});
+//# sourceMappingURL=license-audit-event.test.js.map

package/dist/__tests__/license-audit-event.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"license-audit-event.test.js","sourceRoot":"","sources":["../../src/__tests__/license-audit-event.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACrE,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAEjE,QAAQ,CAAC,+CAA+C,EAAE,GAAG,EAAE;IAC7D,UAAU,CAAC,GAAG,EAAE;QACd,kBAAkB,EAAE,CAAC;QACrB,OAAO,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,kBAAkB,EAAE,CAAC;QACrB,OAAO,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mEAAmE,EAAE,KAAK,IAAI,EAAE;QACjF,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAE5D,wEAAwE;QACxE,wEAAwE;QACxE,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,CAAC;aACrE,QAAQ,CAAC,QAAQ,CAAC;aAClB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACtB,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CACzB,IAAI,CAAC,SAAS,CAAC;YACb,GAAG,EAAE,cAAc;YACnB,GAAG,EAAE,MAAM;YACX,IAAI,EAAE,KAAK;YACX,GAAG,EAAE,CAAC;YACN,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAI;SAC1C,CAAC,CACH;aACE,QAAQ,CAAC,QAAQ,CAAC;aAClB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACtB,MAAM,GAAG,GAAG,MAAM,CAAC;QACnB,OAAO,CAAC,GAAG,CAAC,mBAAmB,GAAG,GAAG,MAAM,IAAI,OAAO,IAAI,GAAG,EAAE,CAAC;QAEhE,MAAM,MAAM,GAAG,YAAY,CAAC,EAAS,CAAC,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACpC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAEnD,uCAAuC;QACvC,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;QAE1C,MAAM,IAAI,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC1D,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAC1B,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,2BAA2B,CACxD,CAAC;QACF,MAAM,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACjC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACzC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC7C,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;QACpD,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;IAC1D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oEAAoE,EAAE,KAAK,IAAI,EAAE;QAClF,MAAM,EAAE,GAAG,MAAM,QAAQ,CAAC,EAAE,gBAAgB,EAAE,UAAU,EAAE,CAAC,CAAC;QAC5D,MAAM,MAAM,GAAG,YAAY,CAAC,EAAS,CAAC,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,aAAa,EAAE,CAAC;QAE7C,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1C,MAAM,IAAI,GAAG,MAAO,EAAU,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC1D,MAAM,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;IAC/B,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/license-end-to-end.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=license-end-to-end.test.d.ts.map

package/dist/__tests__/license-end-to-end.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"license-end-to-end.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/license-end-to-end.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/license-end-to-end.test.js

@@ -0,0 +1,75 @@
+import { describe, it, expect, beforeAll, beforeEach, afterEach } from "vitest";
+import { generateKeyPairSync } from "node:crypto";
+import { existsSync } from "node:fs";
+import { execFileSync } from "node:child_process";
+import { resolve } from "node:path";
+import { checkLicense, _resetLicenseCache } from "../license.js";
+describe("license end-to-end (CLI issue → core validate)", () => {
+    let originalSigningKey;
+    let originalLicenseKey;
+    let originalPublicKey;
+    let issueLicense;
+    // The CLI package's compiled output must exist before this test can import
+    // issueLicense() from it. turbo's task graph does not express this dependency
+    // (core:test does not depend on cli:build — see PR #34 cross-task review),
+    // so a `pnpm clean && pnpm test` run could otherwise execute this test before
+    // cli is built and fail with ERR_MODULE_NOT_FOUND. We make the test
+    // self-sufficient by building cli on-demand if its dist/ is missing.
+    beforeAll(async () => {
+        const cliDist = resolve(__dirname, "..", "..", "..", "cli", "dist", "commands", "license.js");
+        if (!existsSync(cliDist)) {
+            execFileSync("pnpm", ["--filter", "@urateam/cli", "build"], {
+                stdio: "inherit",
+                cwd: resolve(__dirname, "..", "..", "..", ".."),
+            });
+        }
+        // @ts-ignore — relative path into a sibling package's dist/
+        const mod = await import("../../../cli/dist/commands/license.js");
+        issueLicense = mod.issueLicense;
+    }, 60_000);
+    beforeEach(async () => {
+        _resetLicenseCache();
+        originalSigningKey = process.env.URATEAM_LICENSE_SIGNING_KEY_DER_B64;
+        originalLicenseKey = process.env.URATEAM_LICENSE_KEY;
+        const { publicKey, privateKey } = generateKeyPairSync("ed25519");
+        process.env.URATEAM_LICENSE_SIGNING_KEY_DER_B64 = Buffer.from(privateKey.export({ format: "der", type: "pkcs8" })).toString("base64");
+        const mod = await import("../license-public-key.js");
+        originalPublicKey = mod.LICENSE_PUBLIC_KEY_DER_B64;
+        Object.defineProperty(mod, "LICENSE_PUBLIC_KEY_DER_B64", {
+            value: Buffer.from(publicKey.export({ format: "der", type: "spki" })).toString("base64"),
+            writable: true,
+            configurable: true,
+        });
+    });
+    afterEach(async () => {
+        process.env.URATEAM_LICENSE_SIGNING_KEY_DER_B64 = originalSigningKey;
+        if (originalLicenseKey === undefined)
+            delete process.env.URATEAM_LICENSE_KEY;
+        else
+            process.env.URATEAM_LICENSE_KEY = originalLicenseKey;
+        if (originalPublicKey !== undefined) {
+            const mod = await import("../license-public-key.js");
+            Object.defineProperty(mod, "LICENSE_PUBLIC_KEY_DER_B64", {
+                value: originalPublicKey,
+                writable: true,
+                configurable: true,
+            });
+        }
+    });
+    it("CLI-issued enterprise JWT validates and unlocks enterprise features", () => {
+        const token = issueLicense({
+            customerId: "cust_e2e",
+            tier: "enterprise",
+            seats: null,
+            expiresAt: new Date(Date.now() + 30 * 86_400_000),
+        });
+        process.env.URATEAM_LICENSE_KEY = token;
+        const status = checkLicense();
+        expect(status.licensed).toBe(true);
+        expect(status.tier).toBe("enterprise");
+        expect(status.customerId).toBe("cust_e2e");
+        expect(status.features.has("sso")).toBe(true);
+        expect(status.features.has("audit-log")).toBe(true);
+    });
+});
+//# sourceMappingURL=license-end-to-end.test.js.map

package/dist/__tests__/license-end-to-end.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"license-end-to-end.test.js","sourceRoot":"","sources":["../../src/__tests__/license-end-to-end.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AAChF,OAAO,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAgBjE,QAAQ,CAAC,gDAAgD,EAAE,GAAG,EAAE;IAC9D,IAAI,kBAAsC,CAAC;IAC3C,IAAI,kBAAsC,CAAC;IAC3C,IAAI,iBAAqC,CAAC;IAC1C,IAAI,YAA4B,CAAC;IAEjC,2EAA2E;IAC3E,8EAA8E;IAC9E,2EAA2E;IAC3E,8EAA8E;IAC9E,oEAAoE;IACpE,qEAAqE;IACrE,SAAS,CAAC,KAAK,IAAI,EAAE;QACnB,MAAM,OAAO,GAAG,OAAO,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,YAAY,CAAC,CAAC;QAC9F,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;YACzB,YAAY,CAAC,MAAM,EAAE,CAAC,UAAU,EAAE,cAAc,EAAE,OAAO,CAAC,EAAE;gBAC1D,KAAK,EAAE,SAAS;gBAChB,GAAG,EAAE,OAAO,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC;aAChD,CAAC,CAAC;QACL,CAAC;QACD,4DAA4D;QAC5D,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,uCAAuC,CAAC,CAAC;QAClE,YAAY,GAAI,GAAwC,CAAC,YAAY,CAAC;IACxE,CAAC,EAAE,MAAM,CAAC,CAAC;IAEX,UAAU,CAAC,KAAK,IAAI,EAAE;QACpB,kBAAkB,EAAE,CAAC;QACrB,kBAAkB,GAAG,OAAO,CAAC,GAAG,CAAC,mCAAmC,CAAC;QACrE,kBAAkB,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;QAErD,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,mBAAmB,CAAC,SAAS,CAAC,CAAC;QACjE,OAAO,CAAC,GAAG,CAAC,mCAAmC,GAAG,MAAM,CAAC,IAAI,CAC3D,UAAU,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CACpD,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAErB,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,0BAA0B,CAAC,CAAC;QACrD,iBAAiB,GAAI,GAA8C,CAAC,0BAA0B,CAAC;QAC/F,MAAM,CAAC,cAAc,CAAC,GAAG,EAAE,4BAA4B,EAAE;YACvD,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACxF,QAAQ,EAAE,IAAI;YACd,YAAY,EAAE,IAAI;SACnB,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,KAAK,IAAI,EAAE;QACnB,OAAO,CAAC,GAAG,CAAC,mCAAmC,GAAG,kBAAkB,CAAC;QACrE,IAAI,kBAAkB,KAAK,SAAS;YAAE,OAAO,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;;YACxE,OAAO,CAAC,GAAG,CAAC,mBAAmB,GAAG,kBAAkB,CAAC;QAE1D,IAAI,iBAAiB,KAAK,SAAS,EAAE,CAAC;YACpC,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,0BAA0B,CAAC,CAAC;YACrD,MAAM,CAAC,cAAc,CAAC,GAAG,EAAE,4BAA4B,EAAE;gBACvD,KAAK,EAAE,iBAAiB;gBACxB,QAAQ,EAAE,IAAI;gBACd,YAAY,EAAE,IAAI;aACnB,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qEAAqE,EAAE,GAAG,EAAE;QAC7E,MAAM,KAAK,GAAG,YAAY,CAAC;YACzB,UAAU,EAAE,UAAU;YACtB,IAAI,EAAE,YAAY;YAClB,KAAK,EAAE,IAAI;YACX,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,UAAU,CAAC;SAClD,CAAC,CAAC;QACH,OAAO,CAAC,GAAG,CAAC,mBAAmB,GAAG,KAAK,CAAC;QAExC,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;QAC9B,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACnC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAC3C,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC9C,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACtD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/license-public-key.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=license-public-key.test.d.ts.map

package/dist/__tests__/license-public-key.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"license-public-key.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/license-public-key.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/license-public-key.test.js

@@ -0,0 +1,18 @@
+import { describe, expect, it } from "vitest";
+import { createPublicKey } from "node:crypto";
+import { LICENSE_PUBLIC_KEY_DER_B64 } from "../license-public-key.js";
+describe("embedded production public key", () => {
+    it("is a structurally valid Ed25519 SPKI-DER base64 string", () => {
+        const buf = Buffer.from(LICENSE_PUBLIC_KEY_DER_B64, "base64");
+        // Ed25519 SPKI: 12-byte ASN.1 prefix + 32-byte raw public key = 44 bytes.
+        // A character transposition or truncation in the constant would typically
+        // still be "parseable" as some key; the length + OID check catches
+        // specifically-bad tweaks the createPublicKey round-trip alone misses.
+        expect(buf.byteLength).toBe(44);
+        // OID for Ed25519 is 1.3.101.112, encoded as hex `2b6570` at bytes 6-8.
+        expect(buf.subarray(6, 9).toString("hex")).toBe("2b6570");
+        const key = createPublicKey({ key: buf, format: "der", type: "spki" });
+        expect(key.asymmetricKeyType).toBe("ed25519");
+    });
+});
+//# sourceMappingURL=license-public-key.test.js.map

package/dist/__tests__/license-public-key.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"license-public-key.test.js","sourceRoot":"","sources":["../../src/__tests__/license-public-key.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,0BAA0B,EAAE,MAAM,0BAA0B,CAAC;AAEtE,QAAQ,CAAC,gCAAgC,EAAE,GAAG,EAAE;IAC9C,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;QAChE,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,QAAQ,CAAC,CAAC;QAC9D,0EAA0E;QAC1E,0EAA0E;QAC1E,mEAAmE;QACnE,uEAAuE;QACvE,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAChC,wEAAwE;QACxE,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC1D,MAAM,GAAG,GAAG,eAAe,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QACvE,MAAM,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}